Apache:AuthenNTLM - why does it prompt for a password



Hi guys,

I have Apache:AuthenNTLM partially working...=20

Firefox
- prompts me for a username/password with the the following message:
Please enter a username and password for "" at http://nmv-intranetdev/=20
- If I enter a valid username/password it works. =20
- If I hit cancel, I then get another prompt for a uername/password:
Please enter a username and password for 'NIGHTLIFE' at
http://nmv-intranetdev/ (NIGHTLIFE is the AuthName field in the http.conf).
- I have also added NIGHTLIFE to network.automatic-ntlm-auth.trusted-uris i=
n
Firefox about:config

Internet Explorer 6/7
- Error message: cannot display the page
- I have also added the URL of the webserver to the trusted sites

Here is my http.conf
LoadModule perl_module /usr/lib/apache2/modules/mod_perl.so

AllowOverride All
PerlAuthenHandler Apache2::AuthenNTLM
AuthType ntlm,basic
AuthName NIGHTLIFE
require valid-user
PerlAddVar ntdomain "NIGHTLIFE nmv-pdc nmv-pdc"
PerlSetVar defaultdomain NIGHTLIFE
#PerlSetVar ntlmauthoritative off
#PerlSetVar basicauthoritative off
PerlSetVar splitdomainprefix 1
PerlSetVar ntlmdebug 2


Apache log for FireFox
[Mon Oct 08 09:46:08 2007] [error] Bad/Missing NTLM/Basic Authorization
Header for /temp/test.php
[6510] AuthenNTLM: verify handle smbhandle =3D=3D 9197184
[6510] AuthenNTLM: Send: 78 84 76 77 83 83 80 0 2 0 0 0 0 0 0 0 40 0 0 0 1
130 0 0 213 29 91 57 121 58 129 234 0 0 0 0 0 0 0 0
[6510] AuthenNTLM: charencoding =3D 1
[6510] AuthenNTLM: flags2 =3D 130
[6510] AuthenNTLM: nonce=3D=C3=95[9y:=C3=AA
[6510] AuthenNTLM: Send header: NTLM
TlRMTVNTUAACAAAAAAAAACgAAAABggAA1R1bOXk6geoAAAAAAA AAAA=3D=3D
[6510] AuthenNTLM: verify handle =3D 1 smbhandle =3D=3D 9197184
[6510] AuthenNTLM: Start NTLM Authen handler pid =3D 6510, connection =3D
9179312 conn_http_hdr =3D keep-alive main =3D cuser =3D remote_ip =3D
192.168.1.250 remote_port =3D 12598 remote_host =3D <> version =3D 0.02 smb=
handle
=3D
[6510] AuthenNTLM: Object exists user =3D \
[6510] AuthenNTLM: Authorization Header NTLM
TlRMTVNTUAADAAAAGAAYAFYAAAAYABgAbgAAAAAAAABAAAAACA AIAEAAAAAOAA4ASAAAAAAAAAA=
AAAAAAYIAAGEAZABhAG0ASQBUAC0AUABDAC0ANAAqFlak/RLK+iqGWpmCsRCNkrX/buVxeKgqFl=
ak/RLK+iqGWpmCsRCNkrX/buVxeKg=3D
[6510] AuthenNTLM: Got: 78 84 76 77 83 83 80 0 3 0 0 0 24 0 24 0 86 0 0 0 2=
4
0 24 0 110 0 0 0 0 0 0 0 64 0 0 0 8 0 8 0 64 0 0 0 14 0 14 0 72 0 0 0 0 0 0
0 0 0 0 0 1 130 0 0 97 0 100 0 97 0 109 0 73 0 84 0 45 0 80 0 67 0 45 0 52 =
0
42 22 86 164 253 18 202 250 42 134 90 153 130 177 16 141 146 181 255 110 22=
9
113 120 168 42 22 86 164 253 18 202 250 42 134 90 153 130 177 16 141 146 18=
1
255 110 229 113 120 168
[6510] AuthenNTLM: protocol=3DNTLMSSP, type=3D3, user=3Dadam, host=3DIT-PC-=
4,
domain=3D, msg_len=3D0
[6510] handler type =3D=3D 3
[6510] AuthenNTLM: verify handle =3D 3 smbhandle =3D=3D 9197184
[6510] AuthenNTLM: Verify user adam via smb server


Apache log for IE
[Mon Oct 08 09:51:01 2007] [error] Bad/Missing NTLM/Basic Authorization
Header for /temp/test.php
[6490] AuthenNTLM: Start NTLM Authen handler pid =3D 6490, connection =3D
9179312 conn_http_hdr =3D Keep-Alive main =3D cuser =3D remote_ip =3D
192.168.1.250 remote_port =3D 12598 remote_host =3D <> version =3D 0.02 smb=
handle
=3D
[6490] AuthenNTLM: Setup new object
[6490] AuthenNTLM: Config Domain =3D nightlife pdc =3D nmv-pdc bdc =3D nm=
v-pdc
[6490] AuthenNTLM: Config Default Domain =3D NIGHTLIFE
[6490] AuthenNTLM: Config Fallback Domain =3D
[6490] AuthenNTLM: Config AuthType =3D ntlm,basic AuthName =3D NIGHTLIFE
[6490] AuthenNTLM: Config Auth NTLM =3D 1 Auth Basic =3D 1
[6490] AuthenNTLM: Config NTLMAuthoritative =3D on BasicAuthoritative =3D =
on
[6490] AuthenNTLM: Config Semaphore key =3D 23754 timeout =3D 2
[6490] AuthenNTLM: Config SplitDomainPrefix =3D 1
[6490] AuthenNTLM: Authorization Header NTLM
TlRMTVNTUAABAAAAB7IIogkACQAvAAAABwAHACgAAAAFASgKAA AAD0lULVBDLTROSUdIVExJRkU=
=3D
[6490] AuthenNTLM: Got: 78 84 76 77 83 83 80 0 1 0 0 0 7 178 8 162 9 0 9 0
47 0 0 0 7 0 7 0 40 0 0 0 5 1 40 10 0 0 0 15 73 84 45 80 67 45 52 78 73 71
72 84 76 73 70 69
[6490] AuthenNTLM: protocol=3DNTLMSSP, type=3D1,
flags1=3D7(NEGOTIATE_UNICODE,NEGOTIATE_OEM,REQUEST _TARGET),
flags2=3D178(NEGOTIATE_ALWAYS_SIGN,NEGOTIATE_NTLM) , domain length=3D9, doma=
in
offset=3D47, host length=3D7, host offset=3D40, host=3DIT-PC-4, domain=3DNI=
GHTLIFE
[6490] handler type =3D=3D 1
[6490] AuthenNTLM: Connect to pdc =3D nmv-pdc bdc =3D nmv-pdc domain =3D ni=
ghtlife
[6490] AuthenNTLM: enter lock
[6489] AuthenNTLM: leave lock
[Mon Oct 08 09:51:01 2007] [error] Wrong password/user (rc=3D3/1/327681):
NIGHTLIFE\\adam for /favicon.ico
[6489] AuthenNTLM: rc =3D 3 ntlmhash =3D
[6490] AuthenNTLM: verify handle smbhandle =3D=3D 11053552
[6490] AuthenNTLM: Send: 78 84 76 77 83 83 80 0 2 0 0 0 0 0 0 0 40 0 0 0 1
130 0 0 6 181 99 222 193 217 9 10 0 0 0 0 0 0 0 0
[6490] AuthenNTLM: charencoding =3D 1
[6490] AuthenNTLM: flags2 =3D 130
[6490] AuthenNTLM: nonce=3D=C2=B5c=C3=9E=C3=81=C3=99
[6490] AuthenNTLM: Send header: NTLM
TlRMTVNTUAACAAAAAAAAACgAAAABggAABrVj3sHZCQoAAAAAAA AAAA=3D=3D
[6490] AuthenNTLM: verify handle =3D 1 smbhandle =3D=3D 11053552

Any ideas why this is not working? How do I get this working with both
Firefox and IE? =20
I have am starting to think that seamless authentication is more hassle tha=
n
it is worth...

Thanks,
Adam
--=20
View this message in context: http://www.nabble.com/Apache%3AAuthenNTLM-not=
-working-properly-tf4585199.html#a13088697
Sent from the mod_perl - General mailing list archive at Nabble.com.